Cloud breaches are becoming more frequent, yet many organizations still struggle to detect and respond to them swiftly, according to Check Point’s 2025 Cloud Security Report.
The study found that nearly two-thirds of enterprises experienced a cloud security breach in the past year. Alarmingly, only 9% of those incidents were identified within the first hour, and a mere 6% were addressed in the same timeframe. In contrast, over 62% took more than 24 hours to fully recover.
Paul Barbosa, Vice President of Cloud Security at Check Point, expressed concern over the slow reaction times. “Delays create windows of vulnerability, giving attackers the opportunity to move laterally, exfiltrate data, or disrupt operations,” he warned.
A major challenge, the report noted, is that most threats are not detected by security tools. Instead, end users, third parties, or audit processes are typically the ones to spot breaches.
Among the core issues are “alert fatigue” and “tool sprawl.” With more than 70% of organizations managing over 10 cloud security tools, and nearly half receiving upwards of 500 alerts daily, critical threats are often buried under false positives.
Check Point also highlighted how rapid cloud adoption is outpacing security readiness. Over the past year, 62% of businesses have expanded secure access service edge (SASE) technologies, 57% boosted hybrid cloud usage, and 51% embraced multi-cloud environments. Barbosa noted that such fast-paced growth is putting pressure on outdated, perimeter-based defenses.
Artificial intelligence remains a double-edged sword. While 70% of organizations view AI as a strategic priority, only 25% feel confident in defending against AI-driven threats like automated malware or evasion techniques.
Application-layer security remains outdated as well. Sixty percent of businesses still rely on signature-based web application firewalls (WAFs), offering limited defense against modern, evasive API attacks.
To close the gap, Check Point recommends that enterprises invest in automated, AI-based threat detection, streamline their security architecture, and reduce alert noise. Doing so, the report suggests, could significantly enhance threat visibility, boost efficiency, and future-proof cloud environments.
Stay ahead of emerging cybersecurity threats. For the latest insights and updates on cloud security, follow SOC News.
News Source: ITPro.com
